Security Engineer (NCS/Job/ 2947)

Security Engineer / Senior Security Engineer (SAST / SCA)

Location: Bangalore, Hyderabad, Chennai, Pune, Gurgaon

BR: 180K Max

Own vulnerability scanning governance, ensuring accuracy, policy compliance, and quality across pipelines.

Key Responsibilities:

• Configure Black Duck policies (license, CVE, severity)
• Analyze scan results; manage false positives & suppressions
• Generate SBOMs and vulnerability reports
• Ensure policy enforcement in CI/CD pipelines
• Partner with customer security teams
• Support POCs and migration batches
• Validate pipeline execution and scan performance post-migration
• Compare Coverity vs Black Duck outputs
• Maintain regression and documentation

Must-Have Skills:

• 3-5 years in AppSec / Security Operations
• Strong knowledge of CVSS, CVEs, open-source licensing
• Hands-on with Black Duck or SCA tools
• Good understanding of SDLC, DevSecOps, and CI/CD